$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/joxjOs_aC3CfncTsxunycikkIO8.roa File: joxjOs_aC3CfncTsxunycikkIO8.roa (raw, json) Hash identifier: +7K6JRgHT+t6QSJZD42bbFSpP0cqo8Y6c/uW3kFeQtk= Subject key identifier: 8E:8C:63:3A:CF:DA:0B:70:9F:9D:C4:EC:C6:E9:F2:72:29:24:20:EF Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 7D Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/joxjOs_aC3CfncTsxunycikkIO8.roa Signing time: Fri 31 Jan 2025 01:34:48 +0000 ROA not before: Fri 31 Jan 2025 01:34:48 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9622 IP address blocks: 203.179.0.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Jan 31 01:34:48 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=8E8C633ACFDA0B709F9DC4ECC6E9F272292420EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5e:8d:7f:81:0e:cf:2a:49:59:9d:f8:33:22: b6:fb:c3:ac:ae:2c:44:84:18:4f:fd:1b:9d:e9:bd: 41:31:79:40:59:48:67:eb:c3:3b:9c:f2:8b:10:78: a3:6e:5f:7c:7c:7b:88:dc:f3:f5:22:b2:1d:f4:50: b2:8d:0f:73:22:79:f8:4e:ed:df:57:8f:cb:6e:3c: b9:01:1e:70:b1:aa:0c:c2:67:e6:88:b5:d0:7e:10: c1:13:b2:73:2c:1f:2f:d8:00:dc:11:5b:17:df:29: 1e:6d:dd:ae:ba:35:ee:b4:36:6e:ce:2d:ca:9c:8a: b9:33:1e:23:f0:c9:81:cf:a5:b3:8d:01:bd:fe:e4: ab:59:38:ca:93:ac:9f:7e:0e:32:e5:a6:42:53:fb: bf:ca:26:db:12:20:29:08:78:6f:17:be:ff:cf:c9: 2d:03:5d:d0:2d:1b:05:d1:56:5a:7b:48:d1:d2:eb: 3c:db:ab:d0:b3:b5:8c:40:bf:e7:0c:40:a3:23:8c: 7b:80:fc:e4:f7:63:ae:85:df:c1:61:c5:f4:8f:a4: e4:6e:41:06:78:db:29:49:c1:c4:24:7a:d1:3a:08: 15:e2:f9:11:1c:bb:59:2e:41:84:10:ac:4d:61:86: 69:92:b6:31:c6:d3:42:89:ad:ca:61:ec:c7:70:3e: cf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8C:63:3A:CF:DA:0B:70:9F:9D:C4:EC:C6:E9:F2:72:29:24:20:EF X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/joxjOs_aC3CfncTsxunycikkIO8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.179.0.0/20 Signature Algorithm: sha256WithRSAEncryption 78:40:b9:34:18:2e:3f:7c:0e:27:6b:d1:66:13:96:1b:ab:39: 0b:05:c0:62:c8:a4:a1:50:9c:28:76:11:e0:42:fc:38:58:a0: f0:e6:e5:ba:2f:cf:04:d4:0a:69:06:e0:7d:14:58:4d:fb:74: 95:79:33:0d:40:db:31:df:7c:ad:a5:c3:f7:c8:32:86:69:1c: 9a:82:f4:50:9f:a1:60:61:a8:34:07:29:50:0e:c7:b9:ed:06: 2c:23:5f:dc:3b:da:4d:a0:f5:0d:66:11:49:d2:c1:f8:3a:c6: 23:89:b9:e5:71:69:52:58:f8:c3:ef:51:ba:9e:d7:ac:06:a7: b8:8a:28:4a:51:29:8e:74:d2:86:cf:59:42:8f:c6:39:dc:68: 6d:ff:84:ed:5e:dc:26:aa:19:52:27:02:42:64:58:3f:3b:d6: 81:ee:7f:23:1d:0b:e8:97:0a:41:f2:d0:05:a0:3d:20:dc:67: bf:d2:ee:ab:50:76:74:83:cc:15:fc:18:00:36:ac:c0:87:ff: 29:8d:af:37:a1:02:da:1d:ce:08:f9:88:f8:c5:d7:b4:9d:fd: a7:8e:ee:3d:db:5c:1e:b1:76:77:79:ed:f7:eb:24:f3:bf:75: c5:51:e4:32:f2:27:4f:a8:d9:46:62:17:38:30:7a:96:39:56: b0:7b:ff:f2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RDA1 NUIyREFBQzQ4ODc4Q0M5QjExMjdBMjlDRjExNjY2OTIwQTIzMB4XDTI1MDEzMTAx MzQ0OFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoOEU4QzYzM0FDRkRBMEI3 MDlGOURDNEVDQzZFOUYyNzIyOTI0MjBFRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKhejX+BDs8qSVmd+DMitvvDrK4sRIQYT/0bnem9QTF5QFlIZ+vD O5zyixB4o25ffHx7iNzz9SKyHfRQso0PcyJ5+E7t31ePy248uQEecLGqDMJn5oi1 0H4QwROycywfL9gA3BFbF98pHm3drro17rQ2bs4typyKuTMeI/DJgc+ls40Bvf7k q1k4ypOsn34OMuWmQlP7v8om2xIgKQh4bxe+/8/JLQNd0C0bBdFWWntI0dLrPNur 0LO1jEC/5wxAoyOMe4D85PdjroXfwWHF9I+k5G5BBnjbKUnBxCR60ToIFeL5ERy7 WS5BhBCsTWGGaZK2McbTQomtymHsx3A+z2kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSOjGM6z9oLcJ+dxOzG6fJyKSQg7zAfBgNVHSMEGDAWgBRdBVstqsSIeMybESei nPEWZpIKIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkzL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1hU0NpTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1h U0NpTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTMvam94ak9zX2FDM0NmbmNUc3h1bnljaWtrSU84LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMuzADANBgkqhkiG9w0BAQsFAAOCAQEAeEC5NBguP3wOJ2vRZhOWG6s5CwXA YsikoVCcKHYR4EL8OFig8Oblui/PBNQKaQbgfRRYTft0lXkzDUDbMd98raXD98gy hmkcmoL0UJ+hYGGoNAcpUA7Hue0GLCNf3DvaTaD1DWYRSdLB+DrGI4m55XFpUlj4 w+9Rup7XrAanuIooSlEpjnTShs9ZQo/GOdxobf+E7V7cJqoZUicCQmRYPzvWge5/ Ix0L6JcKQfLQBaA9INxnv9Luq1B2dIPMFfwYADaswIf/KY2vN6EC2h3OCPmI+MXX tJ39p47uPdtcHrF2d3nt9+sk8791xVHkMvInT6jZRmIXODB6ljlWsHv/8g== -----END CERTIFICATE-----Generated at Sun Apr 6 19:57:10 2025 by rpki-client